搜索 “gene”

1. 将彻底屏蔽鼠标右键 JavaScript oncontextmenu="window.event.returnvalue=false" <table border oncontextmenu=return(false)><td>no</table> 可用于Table 12 oncontextmenu...

发布时间：2010-08-26 影响版本：迅雷 漏洞描述：迅雷是一款流行的P2P下载工具。 迅雷tcphoc.sys驱动没有正确地验证用户所提交的调用参数，本地用户可以通过提交恶意的IOCTL请求导致内核崩溃。 测试方法： 本站提供程序(方法)可能带有攻击性,仅供安全研究与教学之用,...

发布时间:2010-08-09 影响版本:Tencent QQ电脑管家 4.0 Beta1 漏洞描述: QQ电脑管家是QQ医生3.3的升级版本，主要功能包括安全防护、系统优化和软件管理。 QQ电脑管家所安装的TSKsp.sys驱动没有正确地验证用户所提交的调用参数，本地用户可以通过提交恶意的IOCTL请求...

PHP源代码: <?php if(isset($_POST['u'])){ header('Content-Type: text/html; charset=utf-8'); $ret = ''; if(preg_match('/\"nickname\":\"([^\"]+)\"/', file_get_contents('http://r.qzone.qq.com/cgi-bin/user/cgi_persona...

The PHP Poll Wizard 2 ist a powerful and easy-to-use PHP-Script for creating and managing polls.more generic dork:"Powered by PHP Poll Wizard" | intitle:"php poll wizard"

General build error file. Can tell what modules are installed, the OS the compiler the language, in theory usernames and passwords could probably be found too.

PhpCOIN 1.2.2 arbitrary remote\local inclusion / blind sql injection / path disclosureadvisory:http://rgod.altervista.org/phpcoin122.htmlmore generic:"Powered By phpCOIN"to see previous verions (not tested)

User names and password hashes from web server backups generated by cpanel for ProFTPd. Password hashes can be cracked, granting direct access to FTP accounts. Unix passwd and shadow files can sometimes be found with this query as well.

XOOPS 2.2.3 Arbitrary local file inclusionThis a generic dork for the version I tested, advisory & poc exploit:http://rgod.altervista.org/xoops_xpl.html

Linklint is an Open Source Perl program that checks links on web sites. This search finds the Linklint log directory. Complete site map able to be recreated, and if you go back one directory you can see all the other files generated by linklint. T...